Skip to content

chore(deps): bump grpcio from 1.68.1 to 1.81.1 in /scanner-bridge#63

Merged
valdacf merged 1 commit into
mainfrom
dependabot/pip/scanner-bridge/grpcio-1.81.1
Jun 22, 2026
Merged

chore(deps): bump grpcio from 1.68.1 to 1.81.1 in /scanner-bridge#63
valdacf merged 1 commit into
mainfrom
dependabot/pip/scanner-bridge/grpcio-1.81.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 22, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps grpcio from 1.68.1 to 1.81.1.

Release notes

Sourced from grpcio's releases.

Release v1.81.1

This is release 1.81.0 (graphic) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [EventEngine] Fix a potential use-after-free error on Windows. (#42078)
  • [ssl] Server side handshaker factory stores a map of key signers. (#42002)
  • [Core] Fix completion queue shutdown race on weak memory models (ARM). (#41510)
  • [EventEngine] Fix a Windows race that causes an assertion error. (#41563)
  • [grpc_error] enable error_flatten experiment in OSS. (#41471)

Objective-C

  • [ObjC] Add receiveNextMessage to GRPCUnaryProtoCall. (#42260)

Python

  • [Python] Add typing_extensions dep to aio Bazel target. (#42001)
  • [Python] [Pyright] Part 1 - Pyright for src/python/grpcio/grpc/aio/_base_server.py. (#42240)
  • [Python] Drop 3.9. (#42145)
  • [Python] grpc-status: Relax protobuf dependency upper bound to allow 7.x. (#41948)
  • [Python] [Typeguard] Part 5 - Add Typeguard SYNC Stack in tests. (#40278)
  • [Python] Remove GIL from ReceiveMessageOperation.un_c method. (#41812)
  • [Python] Support observability in AsyncIO stack. (#41573)
  • [Python] Trim Python2 backward compatiblity syntax - removed (object) inheritance. (#41708)

Ruby

  • [Ruby] Drop support for EOL Ruby 3.1 and clean up. (#41435)
  • [Ruby] Composed CallCredentials keep a reference to their source. (#41782)

Release v1.81.0

This is release 1.81.0 (graphic) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

... (truncated)

Commits
  • e84a8a2 [Release] Bump version to 1.81.1 (on v1.81.x branch) (#42584)
  • 4706d6a [xDS] fix use-after-free in global XdsClient map (#42559)
  • 42a6b5b [Core][Release] Update BCR presubmit job definition (#42561)
  • 8bdf11e [Release] Bump version to 1.81.0 (on v1.81.x branch) (#42432)
  • 0029e06 Move all gRPC Session classes to the experimental namespace (#42462)
  • 1f18268 [CI] Fix Asan thread_stress_test error by reducing thread count (#42424) (#42...
  • ee3fed7 Backport MacOS fix cl/917004588 to v1.81.x (#42441)
  • 6244f3b [Release] Bump version to 1.81.0-pre1 (on v1.81.x branch) (#42378)
  • 1108777 [Release] Bump core version to 54.0.0 for upcoming release (#42321)
  • 74940e8 [fix] Add back the do-while loop that handles the TSI_RESULT correctly.
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 22, 2026
@valdacf

valdacf commented Jun 22, 2026

Copy link
Copy Markdown
Collaborator

@dependabot rebase

@dependabot
chore(deps): bump grpcio from 1.68.1 to 1.81.1 in /scanner-bridge
b08e329 
Bumps [grpcio](https://github.com/grpc/grpc) from 1.68.1 to 1.81.1.
- [Release notes](https://github.com/grpc/grpc/releases)
- [Commits](grpc/grpc@v1.68.1...v1.81.1)

---
updated-dependencies:
- dependency-name: grpcio
  dependency-version: 1.81.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/scanner-bridge/grpcio-1.81.1 branch from 01cbc6f to b08e329 Compare June 22, 2026 18:26
@valdacf valdacf merged commit bafefe0 into main Jun 22, 2026
7 checks passed
@valdacf valdacf deleted the dependabot/pip/scanner-bridge/grpcio-1.81.1 branch June 22, 2026 18:27
@valdacf valdacf mentioned this pull request Jun 23, 2026
Merged
valdacf added a commit that referenced this pull request Jun 23, 2026
@valdacf @claude
fix(e2e): restore dependency consistency broken by dependabot merges (#…
1ea7112 
…72)

Two regressions from today's batch of Dependabot bumps, neither caught by
PR CI (which builds neither the scanner-bridge image nor the e2e-shell
test-runner), surfaced by `make test-e2e-containerized`:

1. scanner-bridge image build failed under `--require-hashes`:
   "found: setuptools". The grpcio 1.81.1 bump (#63) regenerated
   requirements.txt without a clean `uv pip compile`, dropping the
   transitive `setuptools==82.0.1` pin (needed by grpcio-tools) AND the
   `pyjwt[crypto]==2.13.0` security pin (PYSEC-2026-175/177/178/179).
   Fix: recompile requirements.txt from requirements.in inside
   python:3.13-slim — restores both pins, surgical diff (only those two).

2. e2e test-runner build failed: pinned apt versions "not found". The
   ubuntu 24.04->26.04 bump (#54) changed only the FROM tag; the apt pins
   (ca-certificates=20240203, curl=8.5.0-2ubuntu10.*, ...) are noble-only.
   Fix: revert to ubuntu:24.04 LTS (its pins match). Re-pinning for 26.04
   is a separate deliberate task.

Verified: full `make test-e2e-containerized` green — 917 PASS, 0 FAIL.

Co-authored-by: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@valdacf